This note is for the early ximo of the shelling Basic video tutorial, organized notes. the tools used in this note:
http://download.csdn.net/detail/obuyiseng/9466056
Exe32pack1.ESP Law1, the program loaded into the OD, found that there is a large section of the encryption instructions, we first step, to reach the key instructions, push EBP
2, step to the CMP eax,eax, in the Register window of the ESP, right-click in the Data window to follow, and in the data window to set a hardware breakpoint.
3. press Run, and remove the hardware breakpoint
4, then one step, will reach Oep
2. Down: BP isdebuggerpresent1. After loading the program, download the breakpoint BP isdebuggerpresent, then enter, Shift+f9 run, then cancel the breakpoint,
2.and press SHIFT+F9 to return to the user code
3. Single Step executionCalculate Ss+edigo to oep!
Simple shelling Tutorial Note (---hand off exe32pack shell